Femto personal proxy application client

ABSTRACT

An access point detects a presence of a first device having a device identifier in a femtozone associated with the access point. The access point matches the device identifier with an identifier associated with corresponding applications and activates a set of applications associated with the device identifier.

CROSS-REFERENCE TO RELATED APPLICATION

This patent application relates to U.S. application Ser. No. 12/347,234, entitled “Femto Personal Policy Server” and filed concurrently herewith. The contents of U.S. application Ser. No. 12/347,234, entitled “Femto Personal Policy Server” are hereby incorporated by reference into this application as if set forth herein in full, and may be combined with any of the features described herein.

TECHNICAL FIELD

This description relates to access terminal authorization at private access points in wireless networks.

BACKGROUND

Cellular wireless communications systems, for example, are designed to serve multiple wireless-enabled devices distributed over a large geographic area by dividing the area into regions called “cells” or “cell areas”. At or near the center of each cell area, a network-side access device (e.g., an access point or base station) is located to serve client devices located in the cell area and is commonly referred to as an “access terminal”. Examples of access terminals include wireless-enabled devices such as cellular telephones, laptops, personal digital assistants (PDAs), and/or other user equipment (e.g., mobile devices). An access terminal generally establishes a call, also referred to as a “communication session,” with an access point to communicate with other entities (e.g., servers) in the network.

SUMMARY

In an aspect, an access point detects a presence of a first device having a device identifier in a femtozone associated with the access point. The access point matches the device identifier with an identifier associated with corresponding applications and activates a set of applications associated with the device identifier.

The access point may deactivate the set of applications when the presence of the first device is not detected.

Implementations may include one or more of the following.

The first device may include a handset.

Matching may include looking up the device identifier in a database that is accessible to the access point.

Activating an application in the set of applications may include changing a value of a usage flag associated with the application from “off” to “on”, and deactivating an application in the set of applications may include changing a value of a usage flag associated with the application from “on” to “off”.

At least one application in the set of activated applications associated with the device identifier may run on one or more devices chosen from a group comprising the access point, the first device, a second device attached to a home network attached to the access point, and a network server communicating with the access point.

In an aspect, a method comprises steps as outlined above.

In another aspect, a computer program product, tangibly embodied in a computer readable storage medium, is operable to cause a data processing apparatus to perform operations comprising the steps of the method above.

In yet another aspect, an apparatus can be configured to perform the steps outlined above.

In another aspect, an access point detects a presence of a first device having a device identifier in a femtozone associated with the access point. The access point matches the device identifier with an identifier associated with an auxiliary application and activates the auxiliary application associated with the identifier that interacts with one or more device applications. The access point creates a data connection between the auxiliary application and the first device.

The access point may deactivate the auxiliary application and terminate the data connection between the auxiliary application and the first device when the presence of the device is not detected by the detector.

Implementations may include the following.

The auxiliary application associated with the device identifier may run on a device chosen from a group comprising the access point and a second device attached to a home network associated with the access point.

In an aspect, a method comprises steps as outlined above.

In another aspect, a computer program product, tangibly embodied in a computer readable medium, is operable to cause a data processing apparatus to perform operations comprising the steps of the method above.

In yet another aspect, an apparatus can be configured to perform the steps outlined above.

DESCRIPTION OF DRAWINGS

FIG. 1 is a diagram illustrating a wireless network.

FIG. 2 is a diagram illustrating a wireless network with a home networking deployment.

FIG. 3 is a diagram illustrating a personal proxy application client for a femtocell.

FIG. 4 is a diagram illustrating an auxiliary application for a personal proxy application client for a femtocell.

Like reference symbols in the various drawings indicate like elements.

DETAILED DESCRIPTION

In wireless communication networks generally, geographic areas served by access points, also referred to as “service areas,” may vary in size, may include smaller service areas, and/or may be located within larger service areas. Larger geographic areas that include one or more smaller service areas are referred to as “macrocell areas,” and an access point that serves a macrocell area is referred to as a “macrocell.” Within a macrocell area, one or more access points may be located to serve smaller geographic areas, referred to as “femtocell areas”, or “femtozones.” An access point that serves a femtozone is referred to as a “femtocell access point.” A macrocell, for example, may provide coverage to an area of a few blocks, while a femtocell access point may provide coverage to an area spanning a floor of a building, a house, or an office space.

Global System for Mobile communications/Wideband Code Division Multiple Access (GSM/WCDMA) wireless communication networks (e.g., 2G/3G macro networks) have been implemented and are in operation globally. However, one motivation for providing “femtocell access points” in such 2G/3G macro networks is that the coverage of those macro networks is often poor indoors, which may cause, e.g., service disruption (e.g., a dropped telephone call) to users of devices at home and inside buildings. Femtocell access points, also known as, e.g., “home” base stations, private access points, or simply “femtocells”, provide complementary indoor coverage to 2G/3G macro networks for service continuity. Femtocell access point (FAP) implementations may also serve as a new service platform to enable mobile wireless broadband applications and home entertainment.

A private access point may include, for example, a femtocell access point or a picocell access point. A private access point may be installed anywhere, for example, a home, an office, a public space, or a restaurant. For ease of description, private access points will be described hereinafter as femtocell access points or FAPs.

Referring to FIG. 1, a radio access network (RAN) 100 includes multiple macro access points or “macrocells” 108, 110, and 112 located in macrocell areas 102, 104, and 106, respectively. The macrocell areas 102, 104, and 106 can include one or more femtocell access points (FAPs). The macrocells 108, 110, and 112 are each configured to communicate with a device over an airlink. For example, macrocell 108 communicates with device 116 over an airlink 109. Macrocells 108, 110, and 112 are connected over a backhaul connection (e.g., backhaul connection 118 a or 118 b) to a radio network controller (RNC) which in turn communicates with the service provider's core network 122, e.g., via RNC 120 a or 120 b, which may be one or more physical devices at different locations.

The RAN 100 is configured to support various mobile wireless access technologies, examples of which include Universal Mobile Telecommunications System (UMTS) and Code Division Multiple Access (CDMA) 2000. The 1xEV-DO protocol has been standardized by the Telecommunication Industry Association (TIA) as TIA/EIA/IS-856, “CDMA2000 High Rate Packet Data Air Interface Specification,” 3GPP2 C.S0024-0, Version 4.0, Oct. 25, 2002, which is incorporated herein by reference. Revision A to this specification has been published as TIA/EIA/IS-856A, “CDMA2000 High Rate Packet Data Air Interface Specification,” 3GPP2 C.S0024-A, Version 2.0, July 2005. Revision A is also incorporated herein by reference. Revision B to this specification has been published as TLA/EIA/IS-856-B, 3GPP2 C.S0024-B and is also incorporated herein by reference. Other wireless communication standards may also be used. Although this description uses terminology from the 3GPP's UMTS standards, the same concepts are applicable to other wireless communication standards, including CDMA 1x EV-DO, CDMA2000, WiMax, WiBro, WiFi, and the like.

The following sections of the 3GPP Standard are hereby incorporated by reference in their entirety:

3GPP Technical Specification 25.331 version 8.3.0 Release 8, July 2008, Universal Mobile Telecommunications System (UMTS); Radio Resource Control (RRC); Protocol specification;

3GPP Technical Specification 25.304 version 7.6.0 Release 7, July 2008, Universal Mobile Telecommunications System (UMTS); User Equipment (UE) procedures in idle mode and procedures for cell reselection in connected mode;

3GPP Technical Specification 25.133 version 8.3.0 Release 8, June 2006, Universal Mobile Telecommunications System (UMTS); Requirements for support of radio resource management (FDD);

3GPP Technical Specification 24.008 version 7.9.0 Release 7, October 2007, Digital cellular telecommunications system (Phase 2+); Universal Mobile Telecommunications System (UMTS); Mobile radio interface Layer 3 specification; Core network protocols; Stage 3; and

3GPP Technical Specification 23.122 version 7.9.0 Release 7, June 2007, Digital cellular telecommunications system (Phase 2+); Universal Mobile Telecommunications System (UMTS); Non-Access-Stratus (NAS) functions related to Mobile Station (MS) in idle mode.

FIG. 2 shows a femtocell deployment in the macrocell service area 102 of the RAN 100 of FIG. 1. The service area 102 of macrocell 108 includes femtocell areas 240 a, 240 b, and 240 c served by femtocell access points (FAPs) 242 a, 242 b, and 242 c, respectively. Hereinafter, the femtocell access points 242 a, 242 b, and 242 c are referred to as “FAPs 242 a, 242 b, and 242 c.” Although, only three FAPs are shown in FIG. 2, in practice a macrocell area can include many more FAPs. For example, a macrocell area could include hundreds, thousands, or hundreds of thousands of FAPs.

A femtocell server 244 is in communication with one or more of the FAPs 242 a-c. The femtocell server 244 maintains active associations between devices such as devices 116 a, 116 b, and 116 c and the FAPs 242 a-c so that a hand-in request from the macrocell 108 (or other components of the mobile core network) can be directed to the correct FAP. One or more of the FAPs 242 a-c and the femtocell server 244 may be combined as a single device. In early deployment, the femtocell server 244 may present a similar, conventional system interface as that of RNC 120 to the existing core network infrastructure 122. References to the core network 122 may in some cases be a shorthand for a reference to the femtocell server 244, and in some implementations, certain functions of the core network 122 may be included in the femtocell server 244 and vice versa. For example, when reference is made to a FAP accessing stored information from the core network 122, all or part of the information might be stored on the core network 122 and/or the femtocell server 244.

Femtocell access point systems typically perform some type of closed access control. Closed access control means, e.g., that access to each femtocell access point is limited in some fashion, i.e., not every device may “camp” on the femtocell and/or utilize the services of the femtocell. For example, an owner of a FAP may like to control which devices are allowed to camp on and register with the core network 122 via the FAP to use normal service (e.g., non-emergency service).

Devices may be “authorized” or “not authorized” (“unauthorized”) to camp on and/or use services of a FAP. Each FAP of the FAPs 242 a-c may include an authorization list, or “access control list”, which may be stored in memory on the FAP. See, e.g., access control lists (ACLs) stored on respective FAPs 242 a, 242 b, 242 c in FIG. 2. The access control list for a particular FAP includes identities of devices that are authorized on that FAP. Devices that are not identified on the access control list of a particular FAP are not authorized on that FAP. A particular device may be authorized on one FAP and unauthorized on another FAP. From the perspective of a FAP, a device is either an authorized device or an unauthorized device. From the perspective of a device, a FAP is either an authorized FAP (e.g., a “home” FAP that the device is authorized on), or an unauthorized FAP (e.g., a “foreign” FAP that the device is not authorized on). A “home” FAP need not be located in a user's home and may, e.g., be located in an office building, or a public place. Likewise, a “foreign” FAP may be located, e.g., in close physical proximity to a user's “home” FAP but still be “foreign” from the perspective of the device. Just as a FAP may identify more than one authorized device in its access control list, a device may be authorized on more than one FAP (and thus may have more than one authorized FAP or “home” FAP). Hereafter, for ease of description, a home FAP for an access terminal will be referred to as though it is the only home FAP for the access terminal. Access control lists may be updated periodically and/or built dynamically and loaded to the FAP by, e.g., an administrator or operator of the core network, e.g., the core network 122.

In, e.g., a wireless network such as a UMTS network, each access point is assigned an access point identifier such as a Location Area Identifier. Location Area Identifiers are explained in more detail in, e.g., 3GPP Technical Specification 23.003, section 4.4.4.6. The Location Area Identifier (LAI) of the access point is broadcast to devices. When camping on an access point, the device issues a Location Area Update Request message that contains the LAI assigned to that access point. That Location Area Update Request message is forwarded by the access point to the core network and the core network returns a message to the device that, e.g., allows that device to camp on the access point to use normal service (e.g., non-emergency service) or that rejects the device's Location Area Update Request to disable normal service (e.g., unless the device is trying to make an emergency call from the FAP). Once camped on an access point with a particular LAI, the device can move into the coverage area of another access point with the same LAI without issuing a new Location Area Update Request. The device issues a new Location Area Update Request message when the device moves into the coverage area of an access point with a different LAI. The device may also issue the Location Area Update Request periodically to inform an access point that the device is still in the vicinity of the access point.

A LAI is an example of an access point identifier. In wireless networks that use other air interface standards, an access point identifier other than a LAI may be used in, e.g., access control.

When a device moves into the coverage area of a FAP, the device will generally issue a Location Area Update Request message containing the LAI assigned to that FAP. Thus, even a device that is unauthorized on a particular FAP but that is in range of or in the coverage area of the FAP will generally attempt to camp on the FAP and perform Location Area registration with the core network (e.g., core network 122) using the Location Area Update Request message. In order to support a form of closed access control, Location Area Update Request messages from unauthorized devices should be rejected to prevent the unauthorized devices from camping on the FAP to use normal service. If Location Area Update requests from unauthorized devices are not rejected by the FAP in some fashion, then unauthorized devices that remain in range of the FAP will generally keep retrying the Location Area Update Requests, which drains the battery and shortens the battery life of the devices. Other issues may arise when Location Area Update requests from unauthorized devices are not properly rejected. In a situation in which a FAP is surrounded by unauthorized devices, for example in a crowded area, the FAP may become overloaded in handling Location Area Update requests. If the FAP passes messages from devices to the core network without first confirming that the devices originating the messages are authorized on the FAP, then, due to the potential volume of requests from unauthorized devices, excessive messaging traffic between the FAP and the core network may become an issue. On the other hand, it is possible for a FAP to reject an unauthorized device completely, or effectively completely. However, since some core network operators consider it desirable for any device, even an unauthorized device, to make emergency calls using a FAP, such rejection methods that block unauthorized devices from making even emergency calls may be undesirable.

Referring to FIG. 3, a FAP 242 is configured to detect the presence of devices 320 a and 320 b, for example, handsets, that enter femtozone 240. Based on a device identifier associated with a device, say 320 a, FAP 242, upon detection of and verification that the device 320 a may camp on the FAP 242, may make available a set of applications to run on the device 320 a. The set of applications are particular to that device through personal proxy client 340 a. FAP 242 may also detect and verify permission to camp for device 320 b and make available a set of applications for device 320 b through personal proxy client 320 b.

A device 320 has associated with it a unique device identifier with which the FAP 242 is able to identify the device. Examples of device identifiers that may be used in an access control list on a particular FAP may include the International Mobile Subscriber Identity (IMSI) of the device. While the device may also use a temporary identifier such as a Temporary Mobile Subscriber Identity (TMSI) in initial communications with a FAP, access control lists may generally include the unique IMSI of the device rather than the TMSI.

Detection of the device begins when the device enters the femtozone associated with FAP 242 and broadcasts its device identifier via a signal. The FAP 242 then receives the signal containing the device identifier with a built-in receiver. Once the device identifier is retrieved from the signal using a processor in the FAP 242, the device is considered detected by the FAP 242.

The detected device has its device identifier located on the access control list as described above. Assuming the device is authorized to camp on the FAP 242, the device identifier is then matched with an identifier in the personal proxy client (“PPC identifier”) in order to identify applications that are to be run on the device 320, the FAP 242, a device attached to the home network 360, or on a server attached to the Internet 370 and associated with the device identifier. A database of PPC identifiers and pointers to applications corresponding to each PPC identifier may be kept in a location accessible to the FAP 242. Such a database may be separate from the access control list, but it may be incorporated into the access control list and therefore stored in memory in the FAP as well.

Matching the device identifier with a PPC identifier may be accomplished, for example, through looking up the PPC identifier in a database. Such a looking up may be done using a standard pattern-matching algorithm.

As stated above, a PPC identifier is associated with pointers to applications that may be run on the device 320, the FAP 242, a device attached to the home network 360, or on a server attached to the Internet 370. Once the device identifier is matched with a PPC identifier, the device identifier is associated with the pointers to the applications. The pointers may comprise, e.g., IP addresses denoting locations where the corresponding applications are stored. The locations may be directly accessible by the FAP 242.

The FAP 242 may access the applications now associated with the device identifier via the associated pointers. Typical applications may include a single sign-on application, a personal automated teller application, and an automatic network backup application. The applications may be run on the FAP 242, on the device 320 or on other devices connected to the FAP 242, e.g., a device attached to the home network 360, or on a server attached to the Internet 370. For example, if a pointer contains the IP address of a storage location of an application, then a message may be sent from the FAP 242 to the storage location to download the application to the device 320 via the FAP 242. An application may also be stored on, for example, the FAP 242, or a femto server 244. At least some of the applications may already be present on device 320; in that case, such applications need not be loaded onto the device. An application may also be loaded to a device attached to the home network 360 or a server attached to the Internet 370.

Once the applications are loaded onto device 320, FAP 242, a device attached to home network 360, or to a server attached to the Internet 370, they are activated by the FAP 242. Each application may have a usage flag associated with device 320. A usage flag has two states: “on” and “off”. An application may be activated on the device if its usage flag associated with the device is in the “on” state. By default, a usage flag is in the “off” state. If the device 320 has been detected and authorized, and an associated application has been loaded by the FAP 242, then the usage flag for that application is switched to the “on” state. Typically, the usage flag stays in the “on” state while the device 320 is camped on FAP 242.

If the device 320 departs from the femtozone associated with FAP 242 or is no longer detected by the FAP 242, then the applications loaded onto the device 320, FAP 242, a device attached to the home network 360, or to a server attached to the Internet 370, may be deactivated. The deactivation may occur by a switching of the usage flags of the applications loaded onto device 320, FAP242, the device attached to home network 360, or the server attached to the Internet 370, from “on” to “off”.

There may be instances which would necessitate an auxiliary application that may interface with a personal proxy client 340. Such an auxiliary application, which may be transparent to a user 410 of device 320, is illustrated in FIG. 4 as a “Femto Robot Buddy Application Client” (FRBAC) 440. FRBAC 440 may reside on FAP 242, or on a device closely integrated with FAP 242, such as femto server 244 or a device attached to the home network 360. When a specific device 320 a enters the femtozone 240 associated with FAP 242, a data connection is automatically created and terminated at the FRBAC 440 a.

When the device 320 a is detected by and camps on FAP 242, FRBAC 440 a initiates the data connection with device 320 a. In turn, the FRBAC 440 a may be connected with corresponding Application Client 340 a running on FAP 242 or on an external device, such as femto server 244, a device attached to the home network 360, or a device directly connected with the FAP 242. FRBAC 440 a provides a communication link between Application Client 340 a and device 320 a. The communication link operates in most cases at the Application Layer in the Open Systems Interconnection (OSI) model, and is locally managed by the FAP 242 and corresponding device 320 a. Because the communication link exists at the Application Layer, the communication link may be implemented in a specific, proprietary way independent of standards of other devices involved in the data connection. Further, a “keep alive” mechanism can be implemented using the automatically created data connection on the communication link.

FRBAC 440 a may have a usage flag having two states: “on” and “off”. The FRBAC 440 a may be activated if its usage flag is in the “on” state. By default, a usage flag is in the “off” state. If the device 320 a has been detected and authorized, and FRBAC 440 a has been loaded by the FAP 242, then the usage flag for the FRBAC 440 a is switched to the “on” state.

If the device 320 a departs from the femtozone associated with FAP 242 or is no longer detected by the FAP 242, then FRBAC 440 a associated with device 320 a may be deactivated. The deactivation may occur by a switching of the usage flag of FRBAC 440 a from “on” to “off”. As soon as the FRBAC 440 a is deactivated, the corresponding connection with device 320 a is terminated.

Although the techniques described above employ the UMTS air interface standard, the techniques are also applicable to other CDMA and non-CDMA air interface technologies in which, e.g., messages can be passed between access terminals and other network components.

The processes described herein are not limited to use with any particular hardware, software, or programming language; they may find applicability in any computing or processing environment and with any type of machine that is capable of running machine-readable instructions. All or part of the processes can be implemented in digital electronic circuitry, or in computer hardware, firmware, software, or in combinations thereof.

The processes described herein and their various modifications (hereinafter “the processes”), are not limited to the hardware and software described above. All or part of the processes can be implemented, at least in part, via a computer program product, e.g., a computer program tangibly embodied in an information carrier, such as one or more machine-readable storage media, for execution by, or to control the operation of, one or more data processing apparatus, e.g., a programmable processor, a computer, multiple computers, and/or programmable logic components.

A computer program can be written in any form of programming language, including compiled or interpreted languages, and it can be deployed in any form, including as a stand-alone program or as a module, component, subroutine, or other unit suitable for use in a computing environment. A computer program can be deployed to be executed on one computer or on multiple computers at one site or distributed across multiple sites and interconnected by a network.

Actions associated with implementing all or part of the processes can be performed by one or more programmable processing devices executing one or more computer programs to perform the functions of the processes. All or part of the processes can be implemented as, special purpose logic circuitry, e.g., an FPGA (field programmable gate array) and/or an ASIC (application-specific integrated circuit).

Processing devices suitable for the execution of a computer program include, by way of example, both general and special purpose microprocessors, and any one or more processors of any kind of digital computer. Generally, a processing device will receive instructions and data from a read-only memory or a random access memory or both. The components of a computer include one or more processing devices for executing instructions and one or more memory devices for storing instructions and data.

Generally, a computer will also include, or be operatively coupled to receive data from or transfer data to, or both, one or more mass storage devices for storing data, e.g., magnetic, magneto-optical disks, or optical disks. Information carriers suitable for embodying computer program instructions and data include all forms of non-volatile memory, including by way of example semiconductor memory devices, e.g., EPROM, EEPROM, and flash memory devices; magnetic disks, e.g., internal hard disks or removable disks; magneto-optical disks; and CD-ROM and DVD-ROM disks. The processor and the memory can be supplemented by, or incorporated in special purpose logic circuitry.

To provide for interaction with a user, the techniques described herein can be implemented on a computer having a display device, e.g., a CRT (cathode ray tube) or LCD (liquid crystal display) monitor, for displaying information to the user and a keyboard and a pointing device, e.g., a mouse or a trackball, by which the user can provide input to the computer (e.g., interact with a user interface element, for example, by clicking a button on such a pointing device). Other kinds of devices can be used to provide for interaction with a user as well; for example, feedback provided to the user can be any form of sensory feedback, e.g., visual feedback, auditory feedback, or tactile feedback; and input from the user can be received in any form, including acoustic, speech, or tactile input.

The techniques described herein can be implemented in a distributed computing system that includes a back-end component, e.g., as a data server, and/or a middleware component, e.g., an application server, and/or a front-end component, e.g., a client computer having a graphical user interface and/or a Web browser through which a user can interact with an implementation of the invention, or any combination of such back-end, middleware, or front-end components. The components of the system can be interconnected by any form or medium of digital data communication, e.g., a communication network. Examples of communication networks include a local area network (“LAN”) and a wide area network (“WAN”), e.g., the Internet, and include both wired and wireless networks.

The computing system can include clients and servers. A client and server are generally remote from each other and typically interact over a communication network. The relationship of client and server arises by virtue of computer programs running on the respective computers and having a client-server relationship to each other.

Actions associated with the processes can be rearranged and/or one or more such actions can be omitted to achieve the same, or similar, results to those described herein.

Components of different implementations may be combined to form implementations not specifically set forth above. Other implementations not specifically described are also within the scope of the following claims. 

What is claimed is:
 1. A method performed by an access point, the method comprising: detecting, in a femtozone associated with the access point, a presence of a device that has a device identifier; matching the device identifier with an identifier associated with one or more applications; determining that the identifier associated with a first application of the one or more applications is associated with an address, the address denoting a storage location where the first application is stored; in response to matching the device identifier with the identifier associated with the first application, sending a message to the storage location to download the first application to the device via the access point; loading the first application on the device; and in response to loading the first application, activating the first application associated with the device identifier.
 2. The method of claim 1, wherein the device comprises a handset.
 3. The method of claim 1, further comprising deactivating the first application when the presence of the device is not detected.
 4. The method of claim 1, wherein matching comprises looking up the device identifier in a database that is accessible to the access point.
 5. The method of claim 3, wherein activating the first application comprises changing a value of a usage flag associated with the first application from “off” to “on”, and deactivating the first application comprises changing a value of a usage flag associated with the at least one of the one or more applications from “on” to “off”.
 6. The method of claim 1, wherein at least one of the one or more applications associated with the device identifier runs on one or more devices chosen from a group comprising the access point, the device, a second device associated with a home network attached to the access point, and a network server communicating with the access point.
 7. One or more computer storage devices comprising instructions that, when executed by one or more processing devices, cause the one or more processing devices to: detect, in a femtozone associated with an access point, a presence of a device that has a device identifier; match the device identifier with an identifier associated with one or more applications; determining that the identifier associated with a first application of the one or more applications is associated with an address, the address denoting a storage location where the first application is stored; in response to matching the device identifier with the identifier associated with the first application, send a message to the storage location to download the first application to the device via the access point; load the first application on the device; and in response to loading the first application, activate the first application associated with the device identifier.
 8. The one or more computer storage devices of claim 7, wherein the device comprises a handset.
 9. The one or more computer storage devices of claim 7, for causing the processor to deactivate the first application the presence of the device is not detected.
 10. The one or more computer storage devices of claim 7, wherein matching comprises looking up the device identifier in a database that is accessible to the access point.
 11. An access point associated with a femtozone comprising: a processor configured to: detect a device in the femtozone, the device being associated with a device identifier; match the device identifier with an identifier associated with one or more applications; determine that the identifier associated with a first application of the one or more applications is associated with an address, the address denoting a storage location where the first application is stored; in response to matching the device identifier with the identifier associated with the first application, send a message to the storage location to download the first application to the device via the access point; load the first application on the device; and in response to loading the first application, activate the first application associated with the device identifier.
 12. The apparatus of claim 11, wherein the device comprises a handset.
 13. The apparatus of claim 11, wherein the processor is further configured to deactivate the set of applications when the presence of the device is not detected. 